NefMoto

NefMotoBoschME7x plugin: 
Version: 0.1 Alpha
Last Built: Jan  5 2013 (14:01:05) by 360trev

Found 'LookupA_803826' at 00803826
Found 'LookupB_803866' at 00803866
Found 'LookupC_8038a6' at 008038A6
Found 'LookupD_8038ee' at 008038EE
Found 'LookupE_803936' at 00803936
Found 'LookupF_8039ba' at 008039BA
Found 'LookupG_803a50' at 00803A50
Found 'LookupH_803ad4' at 00803AD4
Found 'LookupI_803b6a' at 00803B6A
Found 'LookupJ_803bde' at 00803BDE
Found 'LookupK_803c58' at 00803C58
Found 'LookupL_803cd0' at 00803CD0
Found 'LookupM_803d4a' at 00803D4A
Found 'LookupN_803e36' at 00803E36
Found 'LookupO_803f52' at 00803F52
Found 'LookupP_803f98' at 00803F98
Found 'LookupQ_803fde' at 00803FDE
Found 'LookupR_80402c' at 0080402C
Found 'LookupS_80407a' at 0080407A
Found 'LookupT_8040a0' at 008040A0
Found 'LookupU_8040ae' at 008040AE
Found 'LookupU_8040be' at 008040BE
Found 'LookupV_8040ce' at 008040CE
Found 'WLookup1DIAT_8040dc' at 008040DC
Found 'LookupX_804102' at 00804102
Found 'LookupY_804134' at 00804134
Found 'LookupZ_804166' at 00804166
Found 'LookupAA_80424e' at 0080424E
Found 'WLookup2DBoost_8042ea' at 008042EA
Found 'LookupAC_804386' at 00804386
Found 'LookupAD_8043b6' at 008043B6
Found 'LookupAE_8043e6' at 008043E6
Found 'LookupAF_804456' at 00804456
Found 'Do803cChksumLoop_80602a' at 0080602A
Found 'ReadADC1_80790e' at 0080790E
Found 'SetupADC_80793e' at 0080793E
Found 'ReadADC2_807966' at 00807966
Found 'EnableADC_807a56' at 00807A56
Found 'CANWriteToMsgController_807b90' at 00807B90
Found 'CANStuff1_807bea' at 00807BEA
Found 'CopyROMtoRAM_80dc70' at 0080DC70
Found 'ReadADC3_80de6a' at 0080DE6A
Found 'WLookup1D_CTS_824000' at 00824000
Found 'BLookup2D_Fuel_8240a0' at 008240A0
Found 'WLookup2D_Spark_8241ce' at 008241CE
Found 'SetDTCME71_82ea26' at 0082EA26
Found 'CRC32ME75_86be6e' at 0086BE6E
Found 'CRC32ME71Sub_86bedc' at 0086BEDC

static void PlugIn_process(int iArg)
{
  char funcName[MAXSTR];
  char filename[MAXSTR];
  char mnem[MAXSTR];
  char tmp[1024*512];
  int offset=0;
  int inst_count,func_len;
  unsigned int x, num_funcs, num_segments;
  ea_t addr, start_addr;
  asize_t our_size;
  flags_t flags;
  func_t *f=0;
  segment_t *seg=0;

	  // We are only interested in segments containing code.
	  seg = getnseg(0);
	  num_funcs = get_func_qty();

         // Loop through each function
	  msg("Found <%d> functions\n",num_funcs); 

	for (x = 0; x < num_funcs; x++) 
        {
        f = getn_func(x);      	// get ptr to the function itself
		if(f == 0) {
			msg("func not found at address %p\n");
		}
		else
		{
			// start address of this function..
			start_addr = f->startEA;
			addr = start_addr;

			get_func_name(addr, funcName, sizeof(funcName)-1);		// find the function name
	//      set_name(addr, new_funcName, SN_NOWARN);

			flags = get_flags_novalue(addr);
			msg("Found %-32.32s: at %p, func_flags(%lx)",funcName,addr,flags);
			//  Add name if there's no meaningful name assigned.
			if(has_name(flags) != 0)       { msg("(customized name   ) "); }
			if(has_dummy_name(flags) != 0) { msg("(autogenerated name) "); }
			if(has_auto_name(flags) != 0)  { msg("(has_auto_name     ) "); }

			//
			// calc number of instructions
			//
			inst_count = 0;
			addr = start_addr;	// start of function
			func_len   = ((f->endEA)-(start_addr));

			// count the number of instructions within the function
			for (; addr < f->endEA;) {
				  // Get the flags for this address
				  flags = get_flags_novalue(addr);
				  // Only look at the address if it's a head byte, i.e. the start of an instruction and is code.
				  if (isHead(flags) && isCode(flags))  {   
					  inst_count++;	// increase number of instructions counter we have seenn within this function
				  }
				  our_size = get_item_size(addr);	// get number of bytes within this function
				  addr += our_size;                 // move addres pc to next instruction...
			}
			//
			// at this point 'inst_count' is total number of asm instructions within the buffer
			// 
			msg(" func len = %-8d bytes (%-8d instructions)\n",func_len, inst_count );

			sprintf(filename,"c:\\bin\\%p_%s_%d.bin",start_addr,funcName,inst_count);

#if 1
				addr = start_addr;	// start of function
				offset=0;
				// lets now loop through the instructions in each function
				for (; addr < f->endEA;) 
				{
				  // Get the flags for this address
				  flags = get_flags_novalue(addr);

 				  // get the size of this item (e.g. instruction length)
				  our_size = get_item_size(addr);

				  // Only look at the address if it's a head byte, i.e.
				  // the start of an instruction and is code.
				  if (isHead(flags) && isCode(flags)) 
				  {   
					 char instruction[16];

					// Fill the cmd structure with the disassembly of the current address and get the mnemonic text.
					ua_mnem(addr, mnem, sizeof(mnem)-1);

					ua_ana0(addr);
					ua_mnem(addr, instruction, sizeof(instruction));
					tag_remove(instruction, instruction, sizeof(instruction));

					// lets view the mnemonic of *this* address
//					msg("%p:[%-2.2d] ", addr, our_size);
#if 1
					msg(".");
					get_many_bytes(addr,&tmp[offset],our_size);
					offset += our_size;
#else
					for(int j=0;j < our_size; j++)
					{
						tmp[j] = get_byte(addr+j);
					}
#endif
					// show the hex dump of the instruction
//					hex_dump((unsigned char *)&tmp[offset], our_size);
					// show the mnemonic of the instruction
//					msg(" %-8.8s\n",instruction);
				  } 
				  // move addres pc to next instruction...
				  addr += our_size;
				}

				// dump it..
				msg("dumping %s\n",filename);
				save_file(filename, (unsigned char *)tmp, (size_t)offset);

#endif
		}//end if

	  }//end for
}